Re: iptables anti-nimda anyone?
From: Rob 'Feztaa' Park (fezziker@home.com)Date: 09/21/01
- Previous message: Herbert Kwong: "ftpd and ipchains problem"
- In reply to: Konrad Michels: "iptables anti-nimda anyone?"
- Next in thread: pierre.lombard@imag.fr: "Re: iptables anti-nimda anyone?"
- Next in thread: Bretscher;Johannes;ja: "Re: iptables anti-nimda anyone?"
- Reply: pierre.lombard@imag.fr: "Re: iptables anti-nimda anyone?"
- Reply: hvdkooij@vanderkooij.org: "Re: iptables anti-nimda anyone?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 20 Sep 2001 23:32:11 -0600 (MDT) From: Rob 'Feztaa' Park <fezziker@home.com> To: Bugtraq - Focus Linux <focus-linux@securityfocus.com> Subject: Re: iptables anti-nimda anyone? Message-ID: <Pine.LNX.4.33L2.0109202331040.5968-100000@feztron.ath.cx>
On Wed, 19 Sep 2001, Konrad Michels (dis)graced my inbox with this:
> Hi everyone
> I don't suppose one of our iptables gurus out there has an iptables rule
> to filter out this damn nimda thing? I'm really annoyed about it
> filling up my apache logz and would love to drop the packets 'ere they
> get to the apache server . . .
I don't think that's possible, you'd have to be able to check the contents
of the actual packet; right now iptables is only capable of checking the
headers.
But believe me, i'd love to set up a rule that automatically drops nimda
traffic :)
-- Rob 'Feztaa' Park fezziker@home.com ICQ#: 49781692 :wq!
- Previous message: Herbert Kwong: "ftpd and ipchains problem"
- In reply to: Konrad Michels: "iptables anti-nimda anyone?"
- Next in thread: pierre.lombard@imag.fr: "Re: iptables anti-nimda anyone?"
- Next in thread: Bretscher;Johannes;ja: "Re: iptables anti-nimda anyone?"
- Reply: pierre.lombard@imag.fr: "Re: iptables anti-nimda anyone?"
- Reply: hvdkooij@vanderkooij.org: "Re: iptables anti-nimda anyone?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
